package com.cyx.reggie.filter;

import com.alibaba.fastjson.JSON;
import com.cyx.reggie.common.BaseContext;
import com.cyx.reggie.common.R;
import com.cyx.reggie.entity.Employee;
import lombok.extern.slf4j.Slf4j;
import org.springframework.util.AntPathMatcher;

import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;

/**
 * @author 陈彦西
 * @date 2024/7/3 下午2:33
 * 检查用户是否已经完成登陆
 */
@WebFilter(filterName = "loginCheckFilter",urlPatterns = "/*")
@Slf4j
 public class LoginCheckFilter implements Filter {
    /**
     * 路径匹配器，支持通配符
     */
    public static  final AntPathMatcher PATH_MATCHER=new AntPathMatcher();
     @Override
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {

         HttpServletRequest request = (HttpServletRequest) servletRequest;
         HttpServletResponse response = (HttpServletResponse) servletResponse;
         /**
          * 1.获取本次请求的URI,定义不需要处理的请求
          */
         String requestURI = request.getRequestURI();
         log.info("拦截到请求：{}",requestURI);
         String[] urls = new String[]{
                 "/employee/login",
                 "/employee/logout",
                 "/backend/**",
                 "/front/**",
                 "/common/**",
                 "/user/sendMsg",//移动端发送短信
                 "/user/login",//移动端登陆
         };
         /**
          * 2.判断本次请求是否需要处理
          */
         boolean check=check(urls,requestURI);
         /**
          * 3.如果不需要处理，则直接放行
          */
         if(check){
             log.info("本次请求{}不需要处理",requestURI);
             filterChain.doFilter(request,response);
             return;
         }
         /**
          * 4.判断登陆状态，如果已登录，则直接放行
          */
         // 4-1. 需要处理，判断是否登录
         HttpSession session = request.getSession();
         Object employee = session.getAttribute("employee");
         if (employee != null) {
             //已经登录
             //log.info("用户已经登录，用户id：{}", employee);
             //保存当先线程中登录用户的的id
             BaseContext.setCurrentId((Long) employee);
             filterChain.doFilter(request, response);//放行
             return;
         }
         // 4-2. 需要处理，判断是否登录(用户)
         HttpSession userSession = request.getSession();
         Object userId = userSession.getAttribute("user");
         if (userId != null) {
             //已经登录
             //log.info("用户已经登录，用户id：{}", employee);
             //保存当先线程中登录用户的的id
             BaseContext.setCurrentId((Long) userId);
             filterChain.doFilter(request, response);//放行
             return;
         }

         //log.info("用户未登录");
         /**
          * 5.如果未登录则返回未登录结果，通过输出流方式向客户端页面响应数据
          */
         response.getWriter().write(JSON.toJSONString(R.error("NOTLOGIN")));
          return;

     }

    /**
     *路径匹配判断是否需要放行
     * @param urls
     * @param requestURI
     * @return
     */
     public boolean check(String[] urls,String requestURI) {
        for (String url : urls) {
         boolean match = PATH_MATCHER.match(url, requestURI);
         if (match) {
             return true;
         }
        }
        return false;
     }
}
